← Back to CVE List

CVE-2018-18635

Published: 2018-10-24T21:29Z
Last Modified: 2024-11-21T03:56Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
www/guis/admin/application/controllers/UserController.php in the administration login interface in MailCleaner CE 2018.08 and 2018.09 allows XSS via the admin/login/user/message/ PATH_INFO. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt